SonarQube Community 7.9.1 (build 27448), using OWASP ZAP Plugin
The OWASP ZAP Quality Profile currently has a vulnerability that is classified as Minor. I’d like to make this vulnerability be detected as major across all the projects in my SonarQube instance.
So far I have extended the existing quality profile and modified the specific vulnerability to set it as major. I have also made this the default quality profile under the ZAP heading.
For projects that I introduce this vulnerability into, it is categorized as major. However, for projects where this vulnerability already existed, it is being categorized as minor still.
What I’d like to be able to do is make SonarQube categorize existing vulnerabilities/issues based on my new quality profile - whether or not they existed before the quality profile. Is there a way to do this?